ISCS-6353_Lab2-Capture1.s0i0.pcap

MD573412cd1c1e149cbeb30595a160717f3
Submission Date2022-06-27 20:44:46
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 5
Showing 1-5 of 5 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
1933-01-06T14:26:24.453372-0800192.168.57.141192.168.57.1querysh.enigmasoftware.comA(not set)
2
1933-01-06T14:43:05.004110-0800192.168.57.141192.168.57.1querysh.enigmasoftware.comA(not set)
3
1933-01-06T14:59:45.340609-0800192.168.57.141192.168.57.1querysh.enigmasoftware.comA(not set)
4
1933-01-06T15:33:05.439151-0800192.168.57.141192.168.57.1querysh.enigmasoftware.comA(not set)
5
1933-01-06T16:39:45.811006-0800192.168.57.141192.168.57.1querysh.enigmasoftware.comA(not set)
TLS 0
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
No results found.
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 0
#
TimestampSourceHostnamePortMethodURLStatus
No results found.
SMB 11
Showing 1-11 of 11 items.
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
1
1933-01-06T15:08:38.559099-0800192.168.57.135192.168.57.134NT LM 0.12SMB1_COMMAND_NEGOTIATE_PROTOCOL00
2
1933-01-06T15:08:39.227784-0800192.168.57.135192.168.57.134NT LM 0.12SMB1_COMMAND_SESSION_SETUP_ANDX1000
3
1933-01-06T15:08:40.005627-0800192.168.57.135192.168.57.134NT LM 0.12SMB1_COMMAND_TREE_CONNECT_ANDX1011
4
1933-01-06T15:08:40.691823-0800192.168.57.135192.168.57.134NT LM 0.12SMB1_COMMAND_LOGOFF_ANDX1010
5
1933-01-06T15:08:41.128847-0800192.168.57.135192.168.57.134NT LM 0.12SMB1_COMMAND_TREE_DISCONNECT1011
6
1933-01-06T15:08:41.458495-0800192.168.57.135192.168.57.134NT LM 0.12SMB1_COMMAND_SESSION_SETUP_ANDX1020
7
1933-01-06T15:08:42.219205-0800192.168.57.135192.168.57.134NT LM 0.12SMB1_COMMAND_TREE_CONNECT_ANDX1031
8
1933-01-06T15:08:42.723991-0800192.168.57.135192.168.57.134NT LM 0.12SMB1_COMMAND_LOGOFF_ANDX1030
9
1933-01-06T15:08:46.620886-0800192.168.57.135192.168.57.134NT LM 0.12SMB1_COMMAND_TREE_DISCONNECT1031
10
1933-01-06T15:08:46.624137-0800192.168.57.135192.168.57.134NT LM 0.12SMB1_COMMAND_SESSION_SETUP_ANDX1000
11
1933-01-06T15:08:46.624137-0800192.168.57.135192.168.57.134NT LM 0.12SMB1_COMMAND_SESSION_SETUP_ANDX1020
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 10
Showing 1-10 of 10 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
1933-01-06T18:05:42.525005-08001407454460931111flow192.168.57.14156994239.255.255.2501900UDPpcapanalyzer
2
1933-01-06T18:05:42.525005-0800306998443327966flow192.168.57.1(not set)192.168.57.144(not set)ICMPpcapanalyzer
3
1933-01-06T18:05:42.525005-08001872315990771760flow192.168.57.135138192.168.57.255138UDPpcapanalyzer
4
1933-01-06T18:05:42.525005-08001876635668039210flowfe80:0000:0000:0000:8cd9:2052:40dd:2020546ff02:0000:0000:0000:0000:0000:0001:0002547UDPpcapanalyzer
5
1933-01-06T18:05:42.525005-08001902136150778726flowfe80:0000:0000:0000:3569:b3e3:706c:31df546ff02:0000:0000:0000:0000:0000:0001:0002547UDPpcapanalyzer
6
1933-01-06T18:05:42.525005-0800216511682610063flow192.168.57.135137192.168.57.255137UDPpcapanalyzer
7
1933-01-06T18:05:42.525005-08001528031486431827flow192.168.57.134137192.168.57.135137UDPpcapanalyzer
8
1933-01-06T18:05:42.525005-0800965081533023951flow192.168.57.1351052192.168.57.134139TCPpcapanalyzer
9
1933-01-06T18:05:42.525005-0800406989073928406flow192.168.57.13056993239.255.255.2501900UDPpcapanalyzer
10
1933-01-06T18:05:42.525005-08002246965896211196flow192.168.57.14156992192.168.57.153UDPpcapanalyzer
File 0
#
TimestampSourceDestinationFile NameFile MagicFile Size
No results found.

Comments(not set)

Update Download PCAP Delete